Google Git
Sign in
boringssl/boringssl.git/d87021d2467fca449d98f1251ddc3c87b9b97f30
commit
d87021d2467fca449d98f1251ddc3c87b9b97f30
[log] [tgz]
author
David Benjamin <davidben@chromium.org>
Tue Jun 16 11:51:15 2015 -0400
committer
Adam Langley <agl@google.com>
Tue Jun 16 19:07:15 2015 +0000
tree
620d3b72640a66ed8d53ac5a55170bb4b946619d
parent
184494dfccbf854212a82e230465b98ea1e86afe [diff]
Fix length checks in X509_cmp_time to avoid out-of-bounds reads.

Also tighten X509_cmp_time to reject more than three fractional
seconds in the time; and to reject trailing garbage after the offset.

CVE-2015-1789

(Imported from upstream's 9bc3665ac9e3c36f7762acd3691e1115d250b030)

Change-Id: I2091b2d1b691c177d58dc7960e2e7eb4c97b1f69
Reviewed-on: https://boringssl-review.googlesource.com/5124
Reviewed-by: Adam Langley <agl@google.com>
1 file changed
tree: 620d3b72640a66ed8d53ac5a55170bb4b946619d
  1. crypto/
  2. decrepit/
  3. doc/
  4. include/
  5. ssl/
  6. tool/
  7. util/
  8. .clang-format
  9. .gitignore
  10. BUILDING
  11. CMakeLists.txt
  12. codereview.settings
  13. LICENSE
  14. STYLE